After the implementation of Kerberos 5, we learned that anyone changing their password to longer than 8 characters would no longer be able to use services authenticated by Sentinel.  We also learned that ANGEL is similarly affected.  Therefore we temporarily changed NetID.msu.edu to limit the max password length to 8, and the Kerberos config to allow a password as short as 6 characters.  AIS is working on the Sentinel-Kerberos issue, and the ACNS ANGEL team is working on that side.

 

After these issues are resolved, we do plan on going forward with the policy of 8 characters as the minimum password length.

 

/rich
 

On 5/16/05, Michael Surato <[log in to unmask]> wrote:

Hi,

After the implementation of Kerberos 5 I was under the impression that
users could have a NetID password of at least 8 characters, with an
upper limit of 255 characters. When I helped a user to change their
password today, I was surprised that the system enforced a password
length of at least 6 characters, but not more than 8 characters. Is this
the manner that it was supposed to work? If so, I would be interested in
why an upper limit of 8 characters is required.

+-------------------------------------------+
|            Michael Surato                 |
|      Resource Center for Persons          |
|           with Disabilities               |
|      Michigan State University            |
|            120 Bessey Hall                |
|        East Lansing, MI 48824             |
| Voice: (517) 353-9643 Fax: (517) 432-3191 |
+-------------------------------------------+